bug#46183: [PATCH 0/1] Update gcrypt [URGENT SECURITY ISSUE]

guix-patches

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

bug#46183: [PATCH 0/1] Update gcrypt [URGENT SECURITY ISSUE]

From:	Ludovic Courtès
Subject:	bug#46183: [PATCH 0/1] Update gcrypt [URGENT SECURITY ISSUE]
Date:	Mon, 01 Feb 2021 12:50:49 +0100
User-agent:	Gnus/5.13 (Gnus v5.13) Emacs/27.1 (gnu/linux)

Hi,

Guillaume Le Vaillant <glv@posteo.net> skribis:

> According to the news at https://gnupg.org:
>
> Libgcrypt 1.9.1 released (2021-01-29)   important
>
> Unfortunately we introduced a severe bug in Libgcrypt 1.9.0 released 10 days 
> ago.
> If you already started to use version 1.9.0 please update immediately to 
> 1.9.1.
>
> Currently the master and staging branch are using libgcrypt 1.8.5 and
> core-updates is using 1.8.7. These versions don't have the critical bug
> as it was introduced in version 1.9.0. So I think updating libgcrypt on
> master is not an emergency, we just have to remember to never use
> version 1.9.0.

Indeed.  So closing this bug.  That said, we can update libgcrypt in
‘core-updates’.

Ludo’.

[Prev in Thread]

Current Thread

[Next in Thread]

bug#46183: [PATCH 0/1] Update gcrypt [URGENT SECURITY ISSUE], Ludovic Courtès <=

Prev by Date: [bug#46215] [PATCH] Add yadm
Next by Date: [bug#46234] [PATCH] Add new gopkg.in/yaml.v3
Previous by thread: bug#46222: [PATCH 1/1] gnu: pinentry-rofi: Update to 2.0.3.
Next by thread: [bug#46234] [PATCH] Add new gopkg.in/yaml.v3
Index(es):
- Date
- Thread